Re: XSS and URL Encoded Session IDs

BF,

        Here's my thought on this, and though it may not be the best solution, it is at least _a_ solution.

Looking at this from the more objective POV, I see the 'problem' as being 'How do I get the SessionID'.

Well, I'm not big on the ASP/IIS side of things, but I have noticed a trend in a few ways of getting that information.

Q) How does the client get the SessionID? A) The client can either get the SessionID from a cookie that is placed on their system (i.e. ASPSESSION='...'), or the server embeds the SID in HREF links on the page.

So, there are 2 places you could write code, either A) accept the cookie, extract the SessionID B) retrieve a URL and get the SessionID from the parsed string.

Both which would take either 2-3 different steps.

Thanks,
Ryan Yagatich

,_____________________________________________________,
\ Ryan Yagatich                     support@pantek.com \
/ Pantek Incorporated                  (877) LINUX-FIX /
\ 
http://www.pantek.com                 (440) 519-1802 \
/                                                      /

Do you need help?

In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software: Learn more about Pantek's Technical Support offerings Place an order for 24/7/365 Technical Support here Learn more about Pantek, who we are, and what we do Chat with a Live Operator Related securityfocus.com Links bugtraq certification focus-bsd focus-ids focus-ih focus-linux focus-ms focus-sun focus-unix-other focus-virus forensics incidents libnet linux-secnews ms-secnews pen-test secpapers secprog sectools secureshell security-basics securityjobs sf-news vuln-dev webappsec Request more information about Pantek

>Hi List,
Received on Tue Dec 17 10:44:18 2002